individual who is or can be identified either from the data or from the data in conjunction with other information that is in, or likely to come into, the possession of the data controller What is Personal Data?Data Protection Introduction New Data Protection Regulation History of Data ProtectionKey Concepts EnforcementData Regulation

Trending Issues Data Controller Data Processor "Right to be Forgotten"C 131/12 Google Spain Controls Content and Use of Personal DataProcesses Data on Behalf of data controller- racial origin- political or religious views- physical or mental health- sexual life- criminal convictions- trade union membership EU Data Protection Directive 95/46/ECePrivacy Directive 2009/136/ECEuropean Data Regulation ?Data Protection Acts 1988 and 2003ePrivacy Regulations20111. Obtain and process information fairly 2. Keep it only for specified, explicit and lawful purposes3. Use it only in ways compatible with those purposes4. Keep it safe and secure 5. Keep it accurate, complete and up to date 6. Ensure it is adequate, relevant and not excessive 7. Retain for no longer than necessary for the purposes8. Give a copy to individuals on requires Who enforces Data Protection in Ireland? 45 secs to 3.21 if you like the video! Security Breach Code & Practices Key Protection Principles

FINES and SANCTIONS - Investigations, audits and raids - Criminal and Civil Sanctions - Fines of up to €100K and personal liability for directors, officers and managers - ePrivacy Regulations - fines of €5-250K per offense Expansion of ODPC- March 2012 - First award of Damages under DPA (FBD Insurance) (overturned by High Court on appeal) - September 2012 - First Prosecution for data security breach following theft of two unencrypted laptops (Eircom and Meteor)2012In a recent Irish High Court judicial review case Hogan J referred the case to the CJEU to determine whether or not the DPC could investigate Facebook even with the existence of the "safe harbor" provisions"Actual Enforcement

4.6 Million accounts affected in US & CanadaUser names and redacted mobile phone numbers published on snapchatdb.info255,000 Irish users - DPC noted that some may be affectedThe Effect of the New Regulation: What to do? - Dealing with the right to be forgotten- Commission proposed mandatory Data Protection Officer - Records and documenting compliance maintained - Commission - all security breaches to be notified - Costs of compliance to increase - Council final draft due end 2014- Nothing set in stone!

- "disappointed with the response of websites. Levels of compliance would appear to be very low compared to the UK...." Deputy Commissioner Gary Davis What are Cookies?Cookies and Consent Specific Issues to Watch Out For Big Data

What is Big DataBig Data is a term that describes large volumes of high velocity, complex and variable data that require advanced techniques and technologies to enable the capture, storage, distribution, management, and analysis of the informationWhy is it Useful?